公开(公告)号：US08429445B1

公开(公告)日：2013-04-23

申请号：US13113195

申请日：2011-05-23

Applicant: Colin Lee Feeser ,  Ryan Sean Marks

Inventor： Colin Lee Feeser ,  Ryan Sean Marks

IPC: G06F11/00

CPC classification number: G06F11/1451 ,  G06F11/1435 ,  G06F11/1464 ,  G06F11/1469 ,  G06F11/1471

Abstract: A method, system and program product for group policy backup management in a network having a plurality of domains including components and modules for steps of retrieving a list of group policy objects for a domain, generating a configuration initialization file including a domains section identifying a plurality of domains that are to be backed up and a setup section specifying a plurality of values that control the backup of each policy object in each domain, determining a digital signature for each policy object on a list of policies for the domain, comparing the digital signature for each policy object with a corresponding previous digital signature for each policy, determining if a current digital signature for each policy object matches the corresponding previous digital signature for a policy, and backing up a policy object having a current digital signature that does not match the corresponding previous digital signature.

Abstract translation: 一种用于具有多个域的组的策略备份管理的方法，系统和程序产品，所述多个域包括用于检索域的组策略对象的列表的步骤的组件和模块，生成包括识别多个域的域部分的配置初始化文件 要备份的域和设置部分，其指定控制每个域中的每个策略对象的备份的多个值，在域的策略列表上确定每个策略对象的数字签名，比较数字签名 对于每个策略对象具有针对每个策略的对应的先前数字签名，确定每个策略对象的当前数字签名是否与用于策略的对应的先前数字签名相匹配，以及备份具有当前数字签名不匹配的策略对象 相应的以前的数字签名。

公开(公告)号：US07984322B1

公开(公告)日：2011-07-19

申请号：US12772475

申请日：2010-05-03

Applicant: Colin Lee Feeser ,  Ryan Sean Marks

Inventor： Colin Lee Feeser ,  Ryan Sean Marks

IPC: G06F11/00

CPC classification number: G06F11/1451 ,  G06F11/1435 ,  G06F11/1464 ,  G06F11/1469 ,  G06F11/1471

Abstract: A method, system and program product for group policy backup management in a network having a plurality of domains including components and modules for steps of retrieving a list of group policy objects for a domain, generating a configuration initialization file including a domains section identifying a plurality of domains that are to be backed up and a setup section specifying a plurality of values that control the backup of each policy object in each domain, determining a digital signature for each policy object on a list of policies for the domain, comparing the digital signature for each policy object with a corresponding previous digital signature for each policy, determining if a current digital signature for each policy object matches the corresponding previous digital signature for a policy, and backing up a policy object having a current digital signature that does not match the corresponding previous digital signature.

Abstract translation: 一种用于具有多个域的组的策略备份管理的方法，系统和程序产品，所述多个域包括用于检索域的组策略对象的列表的步骤的组件和模块，生成包括识别多个域的域部分的配置初始化文件 要备份的域和设置部分，其指定控制每个域中的每个策略对象的备份的多个值，在域的策略列表上确定每个策略对象的数字签名，比较数字签名 对于每个策略对象具有针对每个策略的对应的先前数字签名，确定每个策略对象的当前数字签名是否与用于策略的对应的先前数字签名相匹配，以及备份具有当前数字签名不匹配的策略对象 相应的以前的数字签名。

公开(公告)号：US07752487B1

公开(公告)日：2010-07-06

申请号：US11463152

申请日：2006-08-08

Applicant: Colin Lee Feeser ,  Ryan Sean Marks

Inventor： Colin Lee Feeser ,  Ryan Sean Marks

IPC: G06F11/00

CPC classification number: G06F11/1451 ,  G06F11/1435 ,  G06F11/1464 ,  G06F11/1469 ,  G06F11/1471

Abstract: A method, system and program product for group policy backup management in an enterprise network having a plurality of domains. A list of group policies for a domain is retrieved and a digital signature is determined for each policy on the list of policies for the domain. The digital signature for each policy in the domain is compared with a corresponding previous digital signature for the same policy. If the current digital signature for each policy matches the corresponding previous digital signature for the same policy, no backup is performed. Each policy having a current digital signature that does not match the corresponding previous digital signature for the same policy is backed up. The preceding steps are repeated for each domain in a plurality of domains within the enterprise network computing environment. Individual policies can also be backed up or restored upon user request. The system contains a group policy backup component for automatically backing up each modified policy in each domain, and a group policy backup manager component for backing up and restoring individual policies in a domain.

Abstract translation: 一种用于具有多个域的企业网络中的组策略备份管理的方法，系统和程序产品。 检索域的组策略列表，并为域的策略列表中的每个策略确定数字签名。 将域中每个策略的数字签名与相同策略的相应的先前数字签名进行比较。 如果每个策略的当前数字签名与相同策略的相应之前的数字签名相匹配，则不进行备份。 备份与当前数字签名不匹配的相应之前的数字签名的每个策略。 对企业网络计算环境中的多个域中的每个域重复前述步骤。 还可以根据用户请求备份或还原个别策略。 系统包含用于自动备份每个域中每个修改的策略的组策略备份组件，以及用于备份和还原域中的各个策略的组策略备份管理器组件。

公开(公告)号：US08656505B1

公开(公告)日：2014-02-18

申请号：US13653837

申请日：2012-10-17

Applicant: Colin Lee Feeser ,  Anthony William Ondrus ,  Mark Jackson Canup

Inventor： Colin Lee Feeser ,  Anthony William Ondrus ,  Mark Jackson Canup

IPC: H04L29/06 ,  G06F11/00 ,  G06F12/14 ,  G06F12/16 ,  G08B23/00

CPC classification number: H04L63/10 ,  G06F21/57 ,  G06F2221/034 ,  G06F2221/2101 ,  H04L9/0643 ,  H04L63/0428 ,  H04L63/126

Abstract: A method, system, and computer program product for detecting and enforcing compliance with access requirements for a computer system in a restricted computer network. A compliance validation configuration file is created for the computer system. A maintenance service utility is configured to launch a compliance validation executable file at a specified time during operation of the computer system. A digital hash is generated for the compliance validation executable file and for the compliance validation configuration file. A determination is made if the computer system or a computer system user is a member of a configured restricted group. If the computer system or the computer system user is a member of a configured restricted group, a determination is made if a directory site code for a subnet of the restricted computer network to which the computer system is connected corresponds to a configured and allowed site. If the directory site code does not correspond to a configured and allowed site, compliance with access requirements are enforced. Enforcement actions can include a forced logoff of the computer system user, and/or a forced shutdown of the computer system.

Abstract translation: 一种用于检测并执行受限计算机网络中计算机系统的访问要求的方法，系统和计算机程序产品。 为计算机系统创建合规验证配置文件。 维护服务实用程序被配置为在计算机系统的操作期间的指定时间启动符合性验证可执行文件。 为合规性验证可执行文件和合规性验证配置文件生成数字散列。 如果计算机系统或计算机系统用户是配置的受限组的成员，则确定。 如果计算机系统或计算机系统用户是配置的受限组的成员，则确定计算机系统连接的受限计算机网络的子网的目录站点代码是否对应于已配置和允许的站点。 如果目录站点代码与配置和允许的站点不对应，则强制执行访问要求。 执行操作可以包括计算机系统用户的强制注销和/或计算机系统的强制关闭。

公开(公告)号：US09336009B1

公开(公告)日：2016-05-10

申请号：US13454904

申请日：2012-04-24

Applicant: Colin Lee Feeser ,  Robert Moore Gilbert ,  Richard A. Paul, Jr. ,  Robert Keith Cahoon

Inventor： Colin Lee Feeser ,  Robert Moore Gilbert ,  Richard A. Paul, Jr. ,  Robert Keith Cahoon

IPC: G06F1/00 ,  G06F9/44

CPC classification number: G06F9/4401 ,  G06F8/63 ,  G06F9/4416

Abstract: Certain aspects of the present disclosure relates to processing functionality of a Configuration Manager Computer Association Tool (CMCA) to an Operating System Deployment (OSD) computer association process. The disclosure includes processing the Operating System Deployment (OSD) functionality of a Microsoft System Center Configuration Manager (SCCM) to configure a server, wherein the OSD causes the server to a Pre-boot Execution Environment (PXE Boot). The SCCM may be launched for the PXE boot process to be associated with the server and configure the SCCM to associate with a specific OSD Task Sequence. Boot from a Network Interface Card (NIC) that has an associated MAC address, using the PXE, wherein the PXE boot process then hands the operation over to the designated OSD Task Sequencer (TS) which handles the configuration process according to at least one variable.

Abstract translation: 本公开的某些方面涉及将配置管理器计算机关联工具（CMCA）处理到操作系统部署（OSD）计算机关联过程的功能。 本公开包括处理Microsoft System Center Configuration Manager（SCCM）的操作系统部署（OSD）功能以配置服务器，其中OSD使服务器进入预引导执行环境（PXE引导）。 可以启动SCCM以使PXE启动过程与服务器相关联，并将SCCM配置为与特定OSD任务序列相关联。 使用PXE从具有关联MAC地址的网络接口卡（NIC）引导，其中PXE启动过程然后将操作转移到根据至少一个变量处理配置过程的指定OSD任务排序器（TS），该任务排序器 。

公开(公告)号：US08368915B1

公开(公告)日：2013-02-05

申请号：US11426160

申请日：2006-06-23

Applicant: Colin Lee Feeser

Inventor： Colin Lee Feeser

IPC: B41J29/393 ,  G06F9/445 ,  G06F9/44

CPC classification number: G06F3/1296 ,  G06F9/4411

Abstract: A method, system and program product for printer driver management in an enterprise network. Each requested printer driver is tested in a controlled environment to determine if the driver is compatible with at least one other driver in a set of drivers. The tested printer driver is conditioned for inclusion in a central repository that stores a plurality of sets of versioned drivers, if the printer driver is determined to be compatible. The tested driver and at least one associated file are packaged and stored in the central repository. The tested driver and associated file are deployed to at least one server hosting a distributed file share. The tested driver and associated file are downloaded to at least one print server. Driver files are touched with a date and time stamp so that workstations will automatically download updated printer drivers from the print server.

Abstract translation: 一种用于企业网络中打印机驱动程序管理的方法，系统和程序产品。 每个请求的打印机驱动程序在受控环境中进行测试，以确定驱动程序是否与一组驱动程序中的至少一个其他驱动程序兼容。 如果确定打印机驱动程序是兼容的，则经测试的打印机驱动程序被调整为包含在存储多组版本化驱动程序的中央存储库中。 被测试的驱动程序和至少一个关联的文件被打包并存储在中央存储库中。 被测试的驱动程序和相关文件被部署到至少一个承载分布式文件共享的服务器。 被测试的驱动程序和相关文件被下载到至少一个打印服务器。 驱动程序文件被触摸日期和时间戳，以便工作站将自动从打印服务器下载更新的打印机驱动程序。

公开(公告)号：US07966665B1

公开(公告)日：2011-06-21

申请号：US11941546

申请日：2007-11-16

Applicant: Colin Lee Feeser ,  Anthony William Ondrus ,  Mark Jackson Canup

Inventor： Colin Lee Feeser ,  Anthony William Ondrus ,  Mark Jackson Canup

IPC: G06F7/04 ,  G06F17/30 ,  H04N7/16 ,  G06F17/00 ,  H04L29/06 ,  G06F15/16

CPC classification number: H04L63/10 ,  G06F21/57 ,  G06F2221/034 ,  G06F2221/2101 ,  H04L9/0643 ,  H04L63/0428 ,  H04L63/126

Abstract: A method, system, and computer program product for detecting and enforcing compliance with access requirements for a computer system in a restricted computer network. A compliance validation configuration file is created for the computer system. A maintenance service utility is configured to launch a compliance validation executable file at a specified time during operation of the computer system. A digital hash is generated for the compliance validation executable file and for the compliance validation configuration file. A determination is made if the computer system or a computer system user is a member of a configured restricted group. If the computer system or the computer system user is a member of a configured restricted group, a determination is made if a directory site code for a subnet of the restricted computer network to which the computer system is connected corresponds to a configured and allowed site. If the directory site code does not correspond to a configured and allowed site, compliance with access requirements are enforced. Enforcement actions can include a forced logoff of the computer system user, and/or a forced shutdown of the computer system.

Abstract translation: 一种用于检测并执行受限计算机网络中计算机系统的访问要求的方法，系统和计算机程序产品。 为计算机系统创建合规验证配置文件。 维护服务实用程序被配置为在计算机系统的操作期间的指定时间启动符合性验证可执行文件。 为合规性验证可执行文件和合规性验证配置文件生成数字散列。 如果计算机系统或计算机系统用户是配置的受限组的成员，则确定。 如果计算机系统或计算机系统用户是配置的受限组的成员，则确定计算机系统连接的受限计算机网络的子网的目录站点代码是否对应于已配置和允许的站点。 如果目录站点代码与配置和允许的站点不对应，则强制执行访问要求。 执行操作可以包括计算机系统用户的强制注销和/或计算机系统的强制关闭。

公开(公告)号：US09519450B1

公开(公告)日：2016-12-13

申请号：US13759418

申请日：2013-02-05

Applicant: Colin Lee Feeser

Inventor： Colin Lee Feeser

IPC: G06F3/12 ,  G06F15/00 ,  G06K15/02 ,  H04N1/00 ,  H04N1/40

CPC classification number: G06F3/1296 ,  G06F9/4411

Abstract: A method, system and program product for printer driver management in an enterprise network. Each requested printer driver is tested in a controlled environment to determine if the driver is compatible with at least one other driver in a set of drivers. The tested printer driver is conditioned for inclusion in a central repository that stores a plurality of sets of versioned drivers, if the printer driver is determined to be compatible. The tested driver and at least one associated file are packaged and stored in the central repository. The tested driver and associated file are deployed to at least one server hosting a distributed file share. The tested driver and associated file are downloaded to at least one print server. Driver files are touched with a date and time stamp so that workstations will automatically download updated printer drivers from the print server.

公开(公告)号：US09311104B1

公开(公告)日：2016-04-12

申请号：US13118623

申请日：2011-05-31

Applicant: Colin Lee Feeser ,  Robert Moore Gilbert ,  Richard A. Paul, Jr. ,  Robert Keith Cahoon

Inventor： Colin Lee Feeser ,  Robert Moore Gilbert ,  Richard A. Paul, Jr. ,  Robert Keith Cahoon

IPC: G06F1/24 ,  G06F9/44

CPC classification number: G06F9/4401 ,  G06F8/63 ,  G06F9/4416

Abstract: Certain aspects of the present disclosure relates to processing managing an operating system to set up a computer association tool. The technique includes processing an Operating System Deployment (OSD) functionality of a Microsoft System Center Configuration Manager (SCCM) to configure a server, wherein the OSD causes the server to a Pre-boot Execution Environment (PXE Boot). The SCCM may be launched for the PXE boot process to be associated with the server and configuring the SCCM to associate with a specific OSD Task Sequence. Boot from a Network Interface Card (NIC) that has an associated MAC address, using the PXE, wherein the PXE boot process then hands the operation over to the designated OSD Task Sequencer (TS) which handles the configuration process according to at least one variable.

Abstract translation: 本公开的某些方面涉及管理操作系统以建立计算机关联工具的处理。 该技术包括处理Microsoft System Center Configuration Manager（SCCM）的操作系统部署（OSD）功能以配置服务器，其中OSD使服务器进入预启动执行环境（PXE引导）。 可以启动SCCM以使PXE启动过程与服务器相关联，并将SCCM配置为与特定OSD任务序列相关联。 使用PXE从具有关联MAC地址的网络接口卡（NIC）引导，其中PXE启动过程然后将操作转移到根据至少一个变量处理配置过程的指定OSD任务排序器（TS），该任务排序器 。

公开(公告)号：US08850547B1

公开(公告)日：2014-09-30

申请号：US11686113

申请日：2007-03-14

Applicant: Colin Lee Feeser ,  Anthony W. Ondrus ,  Steven J. Sanders

Inventor： Colin Lee Feeser ,  Anthony W. Ondrus ,  Steven J. Sanders

IPC: H04L29/00

CPC classification number: H04L63/0428 ,  G06F17/30097 ,  H04L12/4641 ,  H04L63/0272 ,  H04L63/10 ,  H04L63/1441 ,  H04L63/145 ,  H04L63/20 ,  H04L67/04 ,  H04L67/08 ,  H04L67/34 ,  H04L67/42

Abstract: A method, system, and computer program product for providing protected remote access from a remote access client to a remote access server over a computer network through a plurality of inspections. A remote access configuration file is created for the remote access client. A digital hash of the configuration file is then generated. The digital hash is compared with a configuration file stored at a predefined web location. If the comparison results in a match between the digital hash and the stored configuration file, a digital hash comparison is performed between an encrypted remote access configuration file and an encrypted configuration file stored at the predefined web location. If the plurality of inspections are passed, the remote access client is released from a quarantine state and a virtual private network (VPN) connection to the remote access server is established.

Abstract translation: 一种方法，系统和计算机程序产品，用于通过多个检查来通过计算机网络提供从远程访问客户端到远程访问服务器的受保护的远程访问。 为远程访问客户端创建远程访问配置文件。 然后生成配置文件的数字散列。 将数字散列与存储在预定义网址的配置文件进行比较。 如果比较导致数字散列和存储的配置文件之间的匹配，则在加密的远程访问配置文件和存储在预定义网址之间的加密配置文件之间执行数字散列比较。 如果多次检查通过，远程访问客户端将从隔离状态中释放，并建立与远程访问服务器的虚拟专用网络（VPN）连接。